APT37 hackers use new malware to breach air-gapped networks

North Korean hackers are deploying newly uncovered tools to move data between internet-connected and air-gapped systems, spread via removable drives, and conduct covert surveillance.
The Hacker News

ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks

North Korea-linked ScarCruft’s Ruby Jumper uses Zoho WorkDrive C2 and USB malware to breach air-gapped systems for ...
Security Boulevard

APT37 Adds New Capabilities for Air-Gapped Networks

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign ...
Security Boulevard

Fake Huorong security site infects users with ValleyRAT

A convincing lookalike of the popular Huorong Security antivirus has been used to deliver ValleyRAT, a sophisticated Remote Access Trojan (RAT) built on the Winos4.0 framework, to users who believed ...
The Hacker News

ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT Malware

ClickFix Campaign Abuses Compromised Sites to Deploy MIMICRAT Malware | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software ...

Fake CAPTCHA Scam Tricks Windows Users Into Installing Malware

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.
Ars Technica

People complaining about Windows 11 hasn’t stopped it from hitting 1 billion users

Complaining about Windows 11 is a popular sport among tech enthusiasts on the Internet, whether you’re publicly switching to Linux, publishing guides about the dozens of things you need to do to make ...
ZDNet

The first big Windows update of 2026 is a glitchy mess - here's the full list of bugs and fixes

The new year has brought new bugs to Windows. Many of the latest bugs were caused by the January update. Some bugs have been fixed, but others remain unresolved. A new year, a new round of bugs to ...
Wired

How Windows Recall Works—and Whether You Should Switch It On

Windows Recall is one of the biggest AI features Microsoft has added to Windows 11. It’s useful, but it comes with some privacy trade-offs. If you're a Windows 11 user, and specifically an owner of a ...
ZDNet

Why Windows sucks and how to fix it, according to a former Microsoft engineer

A former Microsoft developer thinks Windows sucks and explains why. Windows has become a marketing tool to sell Microsoft services. A Microsoft exec calls Windows an agentic OS, with brutal responses.
Bleeping Computer

Windows 11 2025 Update (25H2) is now available, Here's what's new

Today, Microsoft announced the general availability of Windows 11 25H2, also known as Windows 11 2025 Update. Windows 11 25H2 is a minor update, and it shares the same platform release as Windows 11 ...
IEEE

Advanced Techniques to Execute a Shellcode in Word Memory

Abstract: Executing a macro from VBA is a crossroad that is very well used in Offensive security since attackers can run the application directly on memory to avoid security alerts. This paper is a ...